package com.servlet.manager;

import java.io.IOException;
import java.io.PrintWriter;
import java.sql.SQLException;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import com.dao.impl.UserDaoImpl;
import com.po.User;
import com.utils.MD5Util;

public class UpdatePwdServlet extends HttpServlet {

	/**
	 * The doGet method of the servlet. <br>
	 *
	 * This method is called when a form has its tag value method equals to get.
	 * 
	 * @param request the request send by the client to the server
	 * @param response the response send by the server to the client
	 * @throws ServletException if an error occurred
	 * @throws IOException if an error occurred
	 */
	public void doGet(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		doPost(request, response);
	}

	/**
	 * The doPost method of the servlet. <br>
	 *
	 * This method is called when a form has its tag value method equals to post.
	 * 
	 * @param request the request send by the client to the server
	 * @param response the response send by the server to the client
	 * @throws ServletException if an error occurred
	 * @throws IOException if an error occurred
	 */
	public void doPost(HttpServletRequest request, HttpServletResponse response)
			throws ServletException, IOException {
		request.setCharacterEncoding("UTF-8");
		response.setCharacterEncoding("UTF-8");
		String oldpassword = request.getParameter("oldpassword");
		String password = request.getParameter("password");
		User u = (User)request.getSession().getAttribute("Manager");
		String old = u.getUpwd();
		UserDaoImpl udi = new UserDaoImpl();
		if (new MD5Util().getMD5(oldpassword).equals(old)) {
			try {
				if (udi.updateUpwd(u.getUid(), new MD5Util().getMD5(password))) {
					request.getRequestDispatcher("/WEB-INF/manage/success.jsp").forward(request, response);
				}else {
					request.setAttribute("result", "原密码错误");
					request.getRequestDispatcher("/WEB-INF/manage/updatepwd.jsp").forward(request, response);
				}
			} catch (SQLException e) {
				// TODO Auto-generated catch block
				e.printStackTrace();
			}
		}else {
			request.setAttribute("result", "原密码错误");
			request.getRequestDispatcher("/WEB-INF/manage/updatepwd.jsp").forward(request, response);
		}	
	}
}
